RSA NetWitness for Logs

Today’s security threats are dynamic, multi-faceted, and highly complex attacks, often conducted over long periods of time. To defend against these challenges, security analysts and IT professionals require a continuous and pervasive visibility into their entire infrastructure.

RSA NetWitness for Logs delivers an innovative fusion of hundreds of network and log-event data sources with external threat intelligence. Enterprises now have the broad, robust, and high-speed visibility into critical information needed to help detect today’s targeted, dynamic, and stealthy attack techniques.

RSA NetWitness for Logs may be deployed in three ways:

• As an extension to RSA NetWitness deployments to combine the diverse information contained in log files with the deep content of full traffic capture
• Alongside RSA enVision for powerful security analytics across the volumes of log data collected
• As a standalone log analytics module that can complement other third-party SIEM tools